DANIEL SIYOU

Highly skilled cybersecurity professional with extensive experience in SIEM administration, threat hunting, and incident response. Certified in DarkTrace Cyber Analysis and Microsoft SC-200 Security Operation Analysis, with a strong knowledge of Azure and intermediate expertise in AWS cloud infrastructure. Proven track record in managing complex network threat investigations, optimizing security infrastructure, and ensuring compliance with industry standards and regulations. Adept at leveraging advanced proficiency in Darktrace AI technologies and Microsoft 365 Defender to detect and respond to evolving cyber threats. Demonstrated expertise in managing Azure subscriptions and resource groups, as well as administering Azure Sentinel, Security Orchestration, Automation, and Response (SOAR), SIEM, and Incident Response solutions. Skilled in creating and implementing comprehensive security policies, conducting security audits, and providing expert guidance on the implementation of new security technologies. Effective in conducting security awareness training and collaborating with cross-functional teams to enforce security protocols and best practices.

• Advanced proficiency in Darktrace AI technologies 
• Advanced proficiency in Microsoft 365 Defender for detecting and respond.
• Extensive experience in deploying and maintaining security solutions within Azure, ensuring the protection of cloud-based applications and data.
• Managing user access through the creation of access packages and control of permissions.
• Efficient management of Azure subscriptions and resource group management for effective resource allocation.
• Experience in SIEM administration with Azure Sentinel, Security Orchestration, Automation, and Response (SOAR), Security Information and Event Management (SIEM), Incident Response (IR), Managed Detection and Response (MDR), or Extended Detection and Response (XDR) solutions.
• High ability to manage complex network threat investigations and optimize security infrastructure.
• Skills in event and incident management, development, and maintenance of an event and incident management system for a 24/7 cybersecurity analyst team.
• Expertise in digital analysis and defense, intervention in incidents, and countermeasures against malicious activities using TTP and IOC, as well as managing compliance with information security policies.
• Proficiency in common information security frameworks (MITRE, CIS, NIST CSF, SANS) and familiarity with regulations such as GDPR, PIPEDA, ISO 27001 and PCI DSS.
• Strong capability in conducting comprehensive security assessments, vulnerability scans, and implementing corrective actions.
• Expertise in creating and implementing comprehensive security policies, procedures, and protocols to ensure compliance with industry standards and regulations.
• Proficiency in monitoring network traffic, analyzing security logs, and responding to security incidents in a timely and effective manner.
• Comprehensive understanding of security metrics and their operationalization for Incident Response, Vulnerability Management, Threat Management, Prevention and Coverage, Identity & Access Management, and Data Security.
• Creation of new rules using regular expressions (regex) and regular expressions in NDR.
• Effective communication skills for documenting, understanding, and reporting the context around Information Security metrics performance.
• Proficiency in providing consistent updates to CISO dashboards, conducting trend analysis, and offering insights for performance improvement, risk reduction, efficiency enhancement, and cost reduction.
• Experience in measuring monitoring or Incident Response (IR) processes and reporting on historical data.
• Collaboration with Security Operations (SecOps) Engineers for operationalizing security metrics reporting.
• Proven ability to conduct security awareness training and educate personnel on best practices to enhance overall security posture.
• Conducting regular security audits and risk assessments to identify and address vulnerabilities within the organization's network and systems.
• Implementation and management of intrusion detection and prevention systems to monitor and protect against unauthorized access and cyber-attacks.
• Collaboration with cross-functional teams to develop and enforce security policies, procedures, and best practices.
• Conducting regular security incident response activities, including investigating and resolving security breaches, and implementing preventive measures to minimize future risks.
• Providing expert guidance and recommendations to senior management on the implementation of new security technologies and strategies.
• Conducting comprehensive security training and awareness programs to educate employees on security best practices and protocols.

Certificate in Cyber Security